search for: auth_data

...username and remote display information, but whatever I can get, I'll take. Any help would be great. session.c: packet_check_eom(); success = session_setup_x11fwd(s); if (!success) { xfree(s->auth_proto); xfree(s->auth_data); s->auth_proto = NULL; s->auth_data = NULL; } else { verbose("jblaine testing : w00t? : %s", s->auth_display); }

...ion 1.156 diff -u -r1.156 session.c --- session.c 2001/11/13 12:46:19 1.156 +++ session.c 2001/12/05 20:52:38 @@ -108,8 +108,10 @@ int row, col, xpixel, ypixel; char tty[TTYSZ]; /* X11 */ + int display_number; char *display; int screen; + char *auth_display[2]; char *auth_proto; char *auth_data; int single_connection; @@ -1415,32 +1417,28 @@ _PATH_SSH_SYSTEM_RC); } else if (do_xauth && options.xauth_location != NULL) { /* Add authority data to .Xauthority if appropriate. */ - char *screen = strchr(s->display, ':'); - if (debug_flag) { fprint...

Hi! Here is the patch to support tcp wrappers with x11-forwarded connections. The patch is for openssh-3.0.1p1 but it works fine with 2.9.9p2 too. I've understood that this will not be included in the official version because it adds complexity (?!) to openssh. Binding the forwarded port to localhost doesn't solve all problems. I've understood that you should also implement

Hello, Is the Vista compatibilty issue resolved? Is there any change in PAC structure sent by Vista? Would appreciate any information on this. Thanks Kris Hi Jeremy, > > I started having similar problems after installing Vista SP1 RTM. I > patched samba to dump that *auth_data blob, here it is: > > [2008/03/03 17:20:33, 10] libsmb/clikrb5.c:unwrap_pac(292) > authorization data is not a Windows PAC (type: 141) > > [2008/03/03 17:20:33, 10] libsmb/clikrb5.c:unwrap_pac(294) > DATA_BLOB *auth_data dump follows: > [2008/03/03 17:20:33, 10] lib/util....

...he coredump, in case you need #51 0xb7ff5a16 in _dl_map_object_deps () from /lib/ld-linux.so.2 #52 0x081d3b3a in smb_panic (why=0x82a173d "internal error") at lib/util.c:1353 #53 0x081c12d8 in fault_report (sig=11) at lib/fault.c:41 #54 <signal handler called> #55 0x080e3c57 in get_auth_data_from_tkt (auth_data=0xbfffea90, tkt=0x8387ba0) at libsmb/clikrb5.c:188 #56 0x0823ca25 in ads_verify_ticket (realm=0x835acc0 "LOCALDOMAIN", ticket=0xbfffeba0, principal=0xbfffdce4, auth_data=0xbfffea90, ap_rep=0xbfffea80, session_key=0xbfffea50) at libads/kerberos_verify.c:335 #57 0x08...

...IX if ((cp = getenv("AUTHSTATE")) != NULL) @@ -1392,11 +1419,13 @@ "%.100s %.100s %.100s\n", options.xauth_location, s->auth_display[0], s->auth_proto, s->auth_data); +#ifndef _CRAY if (s->auth_display[1]) fprintf(stderr, "add %.100s %.100s %.100s\n", s->auth_display[1],...

...; n++) { sock = socks[n]; *** session.c.orig Sun Feb 18 20:13:34 2001 --- session.c Wed Feb 21 11:39:06 2001 *************** *** 1361,1366 **** --- 1361,1369 ---- "Running %.100s add %.100s %.100s %.100s\n", options.xauth_location, display, auth_proto, auth_data); + #if 0 + /* it's redundant! really! sshd *never* listens for X11 on a UNIX socket. + * <appro at fy.chalmers.se> */ #ifndef HAVE_CYGWIN /* Unix sockets are not supported */ if (screen != NULL) fprintf(stderr, *************** *** 1368,1373 **** --- 1371,1377 ----...

Hi, I noticed that Markus has fixed the temporary file cleanup problems in OpenSSH cvs. What files need patching for this ? I only noticed changes in: session.c, channels.h and channels.c. -Jarno -- Jarno Huuskonen <Jarno.Huuskonen at uku.fi>

...int self, pointer to struct passwd {..} pw, pointer to struct Authctxt {..} authctxt, int pid, pointer to char term, int ptyfd, int ttyfd, int ptymaster, int row, int col, int xpixel, int ypixel, array[64] of char tty, pointer to char display, int screen, pointer to char auth_proto, pointer to char auth_data, int single_connection, int chanid, int is_subsystem}) returning void previous: function() returning int : "session.c", line 581 cc: acomp failed for session.c *** Error code 2 make: Fatal error: Command failed for target `session.o' To correct a compilation error it is nece...

We've got nicely ADS integrated Samba-3.0.27a servers that are working fine with Win2000 through to standard Vista. However, we are starting to test RC1 of Vista SP1 and discovered that once applied, that workstation cannot connect to Samba server shares - unless the share is open - i.e. no "valid user" style settings. The moment one is defined, Vista fails to connect and pops up an

Hi all, After the memory leaks (bug 1967 <https://bugzilla.mindrot.org/show_bug.cgi?id=1967>) I reported in bugzilla are fixed, I also applied melton(http://lcs.ios.ac.cn/~xuzb/melton.html) to detect the potential bugs in sshd (openssh-5.9p1). The url below is the index of bug reports that are checked as real bugs manually.

...GUESTFS_ADD_DOMAIN_LIBVIRTURI, libvirt_uri, GUESTFS_ADD_DOMAIN_READONLY, 1, -1); - if (r != expected) { - fprintf (stderr, - "%s: test failed: u=%s p=%s: got %d expected %d\n", - prog, auth_data->username, auth_data->password ? : "(none)", - r, expected); - exit (EXIT_FAILURE); - } + if (r != expected) + error (EXIT_FAILURE, 0, + "test failed: u=%s p=%s: got %d expected %d", + auth_data->username, auth_data->password ?...

...return NULL; } else { debug("Socket family %d not supported [X11 disp create]", ai->ai_family); continue; } } session.c, do_child, line 1219: } else if (options.xauth_location != NULL) { /* Add authority data to .Xauthority if appropriate. */ if (auth_proto != NULL && auth_data != NULL) { char *screen = strchr(display, ':'); The problem seems to be that the socket() function not returning EINVAL (as the man page suggests), but is instead returning EAFNOSUPPORT. This change was made recently... http://www.uwsg.iu.edu/hypermail/linux/kernel/0008.3/0342.html .....

Something really hosed Digital/Tru64 UNIX SIA support in 2.5.2p1. I haven't been able to figure out what changed in the code, but the symptom seems to be that the TTY name being registered with SIA is truncated to eight characters. This apparently prevents it from matching with entries in the tty database, and the dreaded "Cannot obtain database information on this terminal

...nSSH code. Thanks. -Alok diff -w -c openssh-2.9p2/session.c modified/session.c *** 1950,1955 **** --- 1565,1590 ---- void session_close(Session *s) { + char cmd[1024]; + FILE *f = NULL; + int xauth_present = s->auth_proto != NULL && s->auth_data != NULL; + + memset(cmd, 0, sizeof (cmd)); + + if (xauth_present && options.xauth_location != NULL) { + debug("Running %.100s remove %.100s", + options.xauth_location, s->display); + te...

...#endif +/* support /./ in homedir */ +#define DOT_CHROOT + /* types */ #define TTYSZ 64 @@ -1037,6 +1040,10 @@ extern char **environ; struct stat st; char *argv[10]; +#ifdef DOT_CHROOT + char *user_dir; + char *new_root; +#endif int do_xauth = s->auth_proto != NULL && s->auth_data != NULL; #ifdef WITH_IRIX_PROJECT prid_t projid; @@ -1093,6 +1100,25 @@ # ifdef HAVE_GETUSERATTR set_limits_from_userattr(pw->pw_name); # endif /* HAVE_GETUSERATTR */ +# ifdef DOT_CHROOT + user_dir = xstrdup(pw->pw_dir); + new_root = user_dir + 1; + + while((new_root = strchr(n...

...int self, pointer to struct passwd {..} pw, pointer to struct Authctxt {..} authctxt, int pid, pointer to char term, int ptyfd, int ttyfd, int ptymaster, int row, int col, int xpixel, int ypixel, array[64] of char tty, pointer to char display, int screen, pointer to char auth_proto, pointer to char auth_data, int single_connection, int chanid, int is_subsystem}) returning void previous: function() returning int : "session.c", line 581 cc: acomp failed for session.c *** Error code 2 make: Fatal error: Command failed for target `session.o' 2.9p1 compiled fine with the same config f...

...../../crypto/openssh/serverloop.c:563 #3 0x8053b60 in do_exec_no_pty ( command=0x80750c0 "rsync --server --sender -vlgtpr --delete . /home/ghelmer/ ", pw=0xbfbfef80, display=0x806c0a0 "mocha.cs.iastate.edu:10.0", auth_proto=0x806c100 "MIT-MAGIC-COOKIE-1", auth_data=0x8075000 "cdf4b6cb730310be3d51a8abf77303fc") at /usr/src/secure/usr.sbin/sshd/../../../crypto/openssh/sshd.c:2211 #4 0x805386c in do_authenticated (pw=0xbfbfef80) at /usr/src/secure/usr.sbin/sshd/../../../crypto/openssh/sshd.c:2037 #5 0x80527b4 in do_authentication () at /u...

...inmsg && *aixloginmsg && + !quiet_login && !options.use_login) { + printf("%s\n", aixloginmsg); + } +#endif /* Do common processing for the child, such as execing the command. */ do_child(command, pw, s->term, s->display, s->auth_proto, s->auth_data, s->tty); /* NOTREACHED */

...IX_PROJECT - prid_t projid; -#endif /* WITH_IRIX_PROJECT */ -#ifdef WITH_IRIX_JOBS - jid_t jid = 0; -#else -#ifdef WITH_IRIX_ARRAY - int jid = 0; -#endif /* WITH_IRIX_ARRAY */ -#endif /* WITH_IRIX_JOBS */ do_xauth = s->display != NULL && s->auth_proto != NULL && s->auth_data != NULL; @@ -1130,39 +1110,9 @@ */ do_pam_setcred(0); # endif /* USE_PAM */ -# ifdef WITH_IRIX_JOBS - jid = jlimit_startjob(pw->pw_name, pw->pw_uid, "interactive"); - if (jid == -1) { - fatal("Failed to create job container: %.100s", - strerror(...